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INTERCEPTION METHOD AND SYSTEM FOR COMPENSATING DISADVANTAGEOUS 
CHARACTERISTICS OF A COMMUNICATION PROTOCOL 



Field of the Invention 

The present invention relates to a method and corresponding means 
5 for communication between computer systems and/ or pervasive 

computing devices. More particularly the current invention relates 
to compensation for disadvantageous characteristics of a 
communication protocol in situations where the communication 
protocol itself cannot be replaced. 

10 Background 

The present invention deals with the handling of disadvantages of a 
communication protocol. Such disadvantages (as it will be seen 
later) are inherent to many types of communication protocols. As 
wireless communication protocols are the most prominent and 

15 well-known protocols reflecting such disadvantages, the current 

description will concentrate on wireless communication protocols. 
Nevertheless, the same or similar disadvantages may be found in 
other types of communication protocols; of course the present 
invention may be applied to these communication protocols as well. 

20 The invention is independent from the communication protocol it is 
applied to. 

For several years industry watchers have been forecasting an 
explosion in wireless Internet usage. With more than 200 million 
Internet users and more than 400 million mobile subscribers in the 
25 marketplace there is every reason to believe that this industry, as 
it grows, will have a dramatic impact on the way we access 
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information . 

The mobile communications marketplace continues to expand 
explosively, with potential revenue growth supported by an 
ever-increasing variety of new services and new target segments. 
5 Each of these new services and segments bring with it fresh 

challenges for business activities outside traditional office 
settings. The wireless Internet allows businesses to deliver new 
types of services, including both internal services like sales 
automation and document management; and external services like 

10 travel reservations, stock trading, information selling - faster 

and easier than ever before. Mobile data communication will set new 
business standards for timely access to people and information. 
Managers, business partners, and account executives-all of whom are 
expected to spend more of their time in the field-will profit from 

15 remote access to enterprise networks. 

Mobile data communication and its increasing acceptance by users 
will substantially influence the advancement of the terrestrial 
network. Apart from the inf rastructural effects, which result from 
the spreading of mobile radio data transmission networks, there are 
20 special problems such as: 

1. Low bandwidth and transmission speed - the transmission 
bandwidth of radio data transmission services remains far behind 
that of stationary networks. 

2. High costs - transmission costs over wireless communication 

25 networks are much higher than the costs over stationary networks. 

3. High complexity - in a dynamic architecture, logical connections 
must be mapped on different physical structures. 
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4. Low reliability - wireless connections are significantly less 
reliable then wireline connections, 

5 . High latency - the response time for wireless links is much 
slower than that of terrestrial links* 

5 6. High connection overhead - each data request for a TCP/IP based 
server requires the client part to open an TCP/IP socket. The 
consequences are to intensify the data overhead and to increase the 
latency. 

10 A wide variety of problems may arise up when wireless communication 
,™ terminals send and receive signals over the air. The signals of all 

^0 the terminals are subject to mutual interference. The 

characteristics of the propagation medium change randomly as users 
VI move, and the mobile radio channel introduces random variation in 

Jfjl5 the received signal power and other distortions, such as frequency 
P shifts and the spreading of signals over time. Signals that travel 

B over the air are also more vulnerable to jamming and interception 

than are those transmitted through wires or fibers. As a result, 
m transmitted data packets may be lost. These limitations are often 

Jf20 addressed with a combination of sophisticated signal processing 
techniques and antennas, but there is no comprehensive software 
based solution. However, these solutions add to the complexity of 
wireless networks and increase power requirements. 

Many of these shortcomings may be attributed to limited bandwidth, 
25 which additionally drives up the costs of wireless data links. At 
present, transmission speed is limited to 9600 Bit/s, This 
limitation is inherent to GSM (Global System for Mobile 
communication) , which transfers only approximately 13 kBit/s per 
channel. There have been attempts to moderate these disadvantages, 
30 The GSM phase II standard specified a data mode supporting 14,4 



DE920000038US1 



- 4 - 

kBit/s. But the increased rate comes at the expense of Forward 
Error Correction, and therefore lowers the quality of the 
connections. Fundamentally GSM was not designed for mobile 
Internet access, and even a 14,4 kBit/s data rate offers only a 
5 small improvement. 

In contrast to other areas of information technology, wireless 
communications has yet to converge to a single technical standard 
or even a very small number of them. Instead it appears that 
diversity will endure for the foreseeable future. As long as this 
10 technical standard is not available, other ways must be 

investigated (perhaps based on software solutions) , to provide a 
Q solution to the above problems. 

fP A further dimension of the problem is introduced by the use of 

V. TCP/IP over wireless networks. Such a combination of a first and a 

ffdS second protocol is sometimes inevitable. The first protocol, 
U TCP/IP, has to be used because it is simply the established 

p protocol of the Internet; on the other hand the second protocol, 

f; the wireless communication protocol, must be used due to the 

11) specific communication environment for which there is no other 

^!20 protocol available for substitution. In such situations one might 
be confronted with the problem of how to deal with disadvantageous 
characteristics of a certain protocol which either might be 
inherent to the protocol itself or which might be the result of 
combining two protocols. 

25 In the current situation of TCP/IP over wireless networks, high 

delay and variation in data loss result in unacceptable performance 
for many standard multimedia applications and reliable protocols 
such as TCP/IP. Both multimedia applications and reliable protocols 
adapt to long term end-to-end estimates of delay and packet loss 

30 between the data source and destination. However, they do not 
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perform well when rapid variations in network characteristics 
occur, causing high fluctuations in these estimates. In order for 
these applications and protocols to achieve good performance, the 
protocol for transmitting data to mobile hosts must provide 
5 communication with reliable connections and negligible data loss 
(which is not the case for wireless communication protocols) . 

Typically, wireless Internet access works in the same way as 
network access using fixed data modems. Usually the mobile terminal 
(a combination of Notebook and wireless data phone) calls a fixed 

10 network modem placed on the ISP (Internet Service Provider) side. 
Thereby it make use of the Point-to-Point (PPP) (RFC1662) or the 
SLIP(RFC1055) in order to enable TCP/IP over phone lines 
(additionally there are proprietary solutions of individual 
portable radio network carriers) . But both PPP and SLIP are not 

15 very well suited for unreliable radio connections because of 

transmission overhead. There is a certain amount of transmission 
overhead associated with maintaining timers, scheduling processes, 
and specific protocol control data. 

IP (Internet Protocol) is a connectionless packet-oriented protocol 
20 of the network layer of the OSI reference model. In the transport 

layer usually TCP (transport control protocol) is applied. TCP uses 
IP. TCP is a connection-oriented and reliable protocol, including 
error recognition and correction, flow control, avoidance of 
congestion in routers, and fairness among network components. The 
25 TCP protocol transfers data complete and without errors. The price 
is slower transmission over error susceptible channels. But by 
using a perfected windowing technique, TCP minimizes this price. A 
sliding window allows TCP to send several data segments and await 
their acknowledgment. As soon as an acknowledgment is received, 
30 the window is shifted and another segment can be sent. For every 

sent segment TCP starts a separate timer, which possibly signals a 
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missing acknowledgment and initiates a retransmission of the 
segment. With the help of Congestion Avoidance, Multiplicative 
Decrease, and Slow Start, TCP adapts to the network condition and 
avoids an overload of the network. 

5 Today's networks offer very low error rates (--10-6). The TCP 

mechanisms are therefore designed for wired networks with low error 
rates. A typical wireless network can't provide such good 
transmission quality and small delays. Moreover the lower OSI 
layers for wireless networks use techniques for error recognition 

10 and correction, which increase the delays. TCP may interpret such 
delays as evidence of congestion. While the perfected mechanisms of 
the wireless network layers provide a faultless transmission, TCP 
timers expire and initiate retransmissions. These timers are 
adapted dynamically by measuring the round trip time. A new time is 

15 only taken when an acknowledgment is received for a segment, which 
has not yet been retransmitted. After a period of error-free 
transmission the timers are accordingly short. 

If there is a short phase of disturbance or poor transmission 
conditions, however, the error correction mechanisms of the 

20 wireless network layers cause longer delays and thereby longer TCP 
round trip times. TCP reacts with expiring timers and unnecessary 
retransmissions. TCP always interprets expired times (or data 
loss) as a sign of congestion. The effects are longer timers and a 
reduction of size of the sliding window which causes a drop in 

25 transmission rate. Even when the transmission in the network 

recovers, TCP still needs some time to adapt its timers to this 
condition. 

Since TCP interprets all acknowledge delays as congestion, it can't 
react correctly in these situations which are typical to a wireless 
30 network. So TCP is not the optimal protocol for transferring data 
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in wireless networks. Thus there is a need for a way of 
compensating for disadvantageous characteristics of a communication 
protocol in situations where the communication protocol itself 
cannot be replaced. 

5 Siiinmary of the Invention 

The present invention relates to means and a method of data 
communication compensating disadvantageous characteristics of a 
first protocol for data communication between a client application 
and a server application. 

10 Communication requests of the client application and the server 
application adhering to a second protocol are intercepted by an 
client Interceptor and a server Interceptor. Besides mapping the 
second protocol onto the first protocol and back again the 
Interceptors transparently compensate disadvantageous 

15 characteristics inherent to the first protocol or arising from the 
combination of protocols. 

In modern interconnected computer environments, developers of 
applications very often are not free in selecting the type of 
communication protocol. For instance, to participate in the 

20 Internet most applications are required to exploit the TCP/IP 

protocol. On the other hand a technology explosion with respect to 
mobile and pervasive computing devices is ongoing. With these new 
computing devices new types of lower level communication protocols 
must be handled to interconnect with these devices. Very often the 

25 straight forward approach of communicating via TCP/IP directly over 
these lower level protocols introduces the above mentioned 
deficiencies. The Interceptor approach of the current invention 
provides an efficient way of compensating for these deficiencies 
transparently . 
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Brief Description of the Drawings 

Figure 1 shows a typical state- of- the art situation which gives 
rise to the above mentioned problems. 

Figure 2 shows in a contrasting manner with respect to Fig. 1 how 
5 and where the proposed intercepting mechanism may be used. 

Figure 3 shows an overall situation in which the proposed 
Interceptor technology can be exploited beneficially. 

Figure 4 shows the system architecture of the Interceptor solution 
in a layering model. 

10 Figure 5 shows a more modular view of the Interceptor architecture 
of Fig. 4. 

Figure 6 shows a typical GSM network according to the state of the 

art wherein a mobile phone is connected to the server application. 

Figure 7 shows how the Interceptor approach can be exploited to 
15 multiplex a multitude of parallel connections over a single 
connection. 

Detailed Description of the Invention 

In the drawings and specification there is set forth a preferred 
embodiment of the invention and, although specific terms are used, 
20 the description thus given uses terminology in a generic and 
descriptive sense only and not for purposes of limitation. 

The present invention can be realized in hardware, software, or a 
combination of hardware and software. Any kind of computer system - 
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or other apparatus adapted for carrying out the methods described 
herein - is suited. A typical combination of hardware and software 
could be a general purpose computer system with a computer program 
that, when being loaded and executed, controls the computer system 
5 such that it carries out the methods described herein. The present 
invention can also be embedded in a computer program product, which 
comprises all the features enabling the implementation of the 
methods described herein, and which - when loaded in a computer 
system - is able to carry out these methods. Computer program means 
10 or computer program in the present context mean any expression, in 
any language, code or notation, of a set of instructions intended 
to cause a system having an information processing capability to 
p perform a particular function either directly or after either or 

i;:^ both of the following a) conversion to another language, code or 

5J15 notation; b) reproduction in a different material form. 

ijl The current invention is illustrated based on the example of a 

'"'^^ wireless communication protocol and the TCP/IP protocol as 

O representatives of a first and second protocol. Nevertheless the 

f: current invention is completely independent from the specific type 

yEO of protocol being used and thus can be applied to other protocols 

J]t as well. 

Introduction and Overview of the Proposed Interceptor 

Figure 1 shows a typical state of the art situation which gives 
rise to above mentioned problems. 

25 The communication platform 101, 102, 103 enables mobile client 
devices 104 to 105 to exchange data with a stationary gateway 
component 103 using wireless radio networks 109 (e.g. the GSM 
network) . The communication platform ensures a reliable and 
efficient transmission of the data. It provides crash recovery to 
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reestablish broken down connections and shorthold mode to minimize 
the costs. It compresses the data to speed up transmission, which 
also has positive effect on the costs. 

The communication platform client offers a client application 106 
5 and 107 on every mobile device the ability to communicate with a 
server 108, which is connected to the communication platform 
gateway. Only one server application can be connected to the 
communication platform gateway at a time. Multiple mobile devices 
can be connected simultaneously to the communication gateway, so 
10 multiple client applications can communicate with this server 
application. 

Despite all of the problems mentioned, which arise in the situation 
^ depicted in Fig. 1, digital data connections from GSM-equipped PCs 

to corporate data centers offer new levels of mobility to remote 
=tU5 access users. The Interceptor solution as proposed by the current 
"'""^ invention exploits this facility and complements it to overcome 

:Z some inherent disadvantages of GSM data - high cost, unreliable 

connections, restricted bandwidth and exposure to loss of 
\P: confidentiality and integrity. 

20 The Interceptor applies an interception mechanism in order to 

improve the transmission qualities of the wireless connection and 
compensate for certain disadvantageous characteristics of the 
wireless communication protocol. 

Fig. 2 shows in a contrasting manner with respect to Fig. 1 how and 
25 where the proposed intercepting mechanism, represented by a client 
Interceptor 2 01 and 2 02 and a server Interceptor 2 03, may be used. 



With the interception mechanism, the Interceptor is not aware of 
DE920000038US1 



-li- 
the existing applications. All outgoing TCP/IP connections are 
intercepted transparently on client and server sides using 
low-level interception mechanisms; they are then passed to the 
communication part that forwards them using wireless transmission 

5 features. This approach does not require any modification to the 
TCP/IP stack, but relies on operating system specific mechanisms 
for request interception. In this way the aim could be obtained 
very efficiently without the need for changes in the TCP/IP based 
client /server application. This high performance system consists of 

10 two basic elements, an embedded component for transparent 
interception of TCP/IP requests and a mobile communication 
platform. The Interceptor uses both components that run on the 
client and on the server side for the protocol replacement and 
optimization, or in general for compensation of deficiencies of the 

15 underlying wireless communication protocol. The mobile 

communication platform makes type and behavior of a physical 
wireless network transparent to applications. This software 
component can be applied to different kinds of cellular radio 
networks and is in a state in which it meets or exceeds the 

20 expected bandwidth avoidance and decreased TCP/IP access times 
associated with any wireless network. 

The Interceptor makes it possible to configure the way a client and 
its server exchange data to meet special requirements. The traffic 
can either be connection-oriented or connectionless; or in other 
25 words the present invention can be applied to both classes of 

protocols. In case of a connection-oriented protocol the following 
functionalities may be embodied into the Interceptor for 
compensating disadvantageous characteristics of the underlying 
protocol : 

30 1. Scalability 

The enterprise environment may be configured in a variety of 
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topologies to meet the needs of specific applications and 
installations. Various cellular radio networks may be used at the 
same time by the Interceptor. 

2. Reliability 

5 All data is transmitted unchanged and without any loss. During 

mobile calls, disconnections can happen at unexpected times - for 
example when entering a tunnel while downloading a document. The 
Interceptor has an excellent mobile resilience and holds the 
session in a special logical off-line mode until reconnection can 

10 be effected by automatic retry. 

3 . Shorthold Mode 

Shorthold Mode means that it is no longer necessary to hold up the 
call during idle periods: the Interceptor detects these idle 
periods and drops the call, reconnecting automatically when there 
15 is more traffic. This mode can cut call costs significantly. 

4. Replacing TCP/IP by wireless optimized transport protocol 
The outgoing TCP/IP data stream is intercepted. All requests are 
routed over one wireless connection to avoid the costly connection 
establishment overhead. Requests and responses are multiplexed over 

20 this connection. The wireless connection uses an optimized 

proprietary protocol in order to reduce the data traffic. Thus the 
Interceptor instance multiplexes N connections over a single 
wireless protocol connection realizing an N-to-one connection 
mapping. 

25 5. Authentication 

The client must authenticate at the gateway before data 
transmission. As the user's session is maintained over potential 
disconnections (intentional or otherwise) , a security level is 
essential. It is vital to prevent one user from connecting to 
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another's off-line or short-hold disconnected session. The 
Interceptor security approach ensures that this cannot happen based 
on a corresponding functionality. 

6. Compression 

5 The data traffic is compressed using the V42bis algorithm to speed 

up the transfers and to reduce costs. In other words, the 

Interceptor also may make use of specific compression algorithms. 

As already indicated above the Interceptor approach is not limited 
to connection-oriented protocols (between the client Interceptor 
10 and the server Interceptor) . For instance to reduce transmission 
costs, the Interceptor supports in addition connectionless radio 
networks in the same way. 

Interceptor Architecture 

Fig. 3 shows an overall situation in which the proposed Interceptor 
15 technology may be exploited beneficially. This may be viewed as a 
typical scenario for using the Interceptor. The mobile user 
represented by the client system 301 (being represented for 
instance by a mobile computer or a mobile phone) may use various 
TCP/IP based applications. Examples of such applications are 
20 Internet browsers using HTTP , e-mail programs using SMTP, news 

using NNTP, terminal emulation programs using TELNET or Lotus Notes 
using a proprietary protocol. The corresponding application server 
3 02 can be part of the intranet or the Internet. 

Beside the user applications, the client system consists of the 
25 client parts of SOCKS, Interceptor 303 and the communication 

platform. The SOCKS client is used to redirect all outgoing TCP/IP 
connections to the Interceptor client. The Interceptor client 
receives all data sent by the user application over such a TCP/IP 
connection and transmits them over the Radio Network 3 04 using the 
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communication platform client • Data received by the communication 
platform from the Radio Network is transferred to the appropriate 
user application via the Interceptor client. 

The Server System comprises the counterparts of the Interceptor 
5 client and communications platform client, namely the Interceptor 
server 3 05 and communication platform server. The data sent by the 
Client System over the Radio Network are received by the 
communication platform server which delivers them to the 
Interceptor server. Knowing the IP address and port of the 

10 destination the Interceptor server sends the data to the 

corresponding application server over a TCP/IP connection. And vice 
versa, data sent by the application server over the TCP/IP 
connection to the Interceptor server are transmitted to the Client 
System over the Radio Network using the communication platform 

15 server. In the scenario depicted in figure 3 the potential 

application server 306 may be some server or within the Internet; 
without deviating from the current teaching the application server 
may also be located within a private intranet behind some type of 
firewall 307 as visualized by the application servers 308. 

20 This architectural view nicely reflects the peculiar relationship 
between client application, client Interceptor, server application 
and server Interceptor. From the perspective of the client 
application the client Interceptor is pretending to represent the 
server application. If the client application and the client 

25 Interceptor reside on the same (mobile or pervasive) computing 

device, as in the current case, bound by a TCP/IP connection (being 
based on the assumption of a reliable communication media) , this 
connection will not be subject of any disturbance. The present 
invention may be applied as well to a situation where the client 

30 application and the client Interceptor reside on different 

computing devices; but the greatest advantages are achieved if both 
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instances reside on the same computing device as in this case 
vulnerability of the TCP/IP connection is reduced to the largest 
extent. From the perspective of the server application the server 
Interceptor is pretending to represent the client application. The 
5 greatest benefits are achieved if the server Interceptor resides on 
this computing system, which represents the end point of the 
unreliable connection (via radio network in the current case) . In a 
typical environment the server applications will reside on 
computing systems different to that computing system which hosts 
10 the server Interceptor; but of course it is not excluded that the 
server Interceptor and the server application share the same 
computing system, 

'3 Fig. 4 shows the system architecture of the Interceptor solution in 

a layering model. The communication platform on the client system 
PilS 401 is connected to the communication platform on the server system 
tf; 402 over a first protocol, a wireless radio network 403 in the 

current example. From a logical perspective this enables a 
S communication 404 between the two communication platforms. 

According to the state of the art the client application 405 would 
5/20 set up a TCP/IP connection (the second protocol) over the 
t^^ communication platform with its application server 406. This would 

establish a logical communication connection 407 between 

application client and application server. 

In contrast to the state of the art, the current teaching 
25 introduces two new instances, the client Interceptor 408 and the 
server Interceptor 409. If the client application attempts to set 
up a connection based on the second protocol (the TCP/IP protocol) 
to the server application, then actually a connection with the 
client Interceptor will be established. In a certain sense the 
30 client Interceptor pretends to represent the server application 
with respect to the client application. The client Interceptor 
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intercepts all communication requests of the client application and 
maps these requests from the second protocol (TCP/IP) onto the 
first protocol (unreliable, wireless radio network) ; it then 
communicates over the communication platform to its counterpart, 
the server Interceptor, By means of this logical 
Interceptor-to-Interceptor communication 410 the basis has been 
created to compensate for deficiencies of the first protocol. The 
server Interceptor will then set up a connection to the server 
application and will perform the reverse mapping from the first 
protocol to the second protocol. Due to its intercepting behavior 
the server Interceptor pretends to represent the client application 
with respect to the server application. 

The Interceptor architecture of Fig. 4 is also represented within 

Fig. 5, but now making use of more modular view. 

Also referring to the description of Fig. 4, Fig. 5 represents: 

• Client applications 501 up to 502, 

• issuing communication requests over of second protocol 503, 

• the client Interceptor 504, intercepting these communication 
requests, and mapping these communication requests onto a first 
protocol 505, 

• the communication platform client and server 506 and 507 
communicating via this first protocol, 

• the server Interceptor 508 executing the reverse mapping 
between the first and the second protocol 509, and 

• the server applications 510 up to 511. 

In the example of Fig. 5 the Interceptor consists of a mobile 
(client) and a stationary (server) part. 

Interception Architecture and Various Communication Protocols 
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1, The standard LAN client/server scenario using TCP/IP connections 

In this scenario client applications communicate with server 
applications using TCP/IP connections. Both partners may initiate 
connections or listen for incoming connections. The characteristics 
5 of the local area network meet the design goals of the TCP 

protocol. Thus application of the interception architecture in such 
an environment will not achieve the full spectrum of advantages. 
For instance, the advantage of increased reliability (as described 
above) will not be achieved in a mere LAN environment. 

10 2 . The wireless scenario in a connection-oriented radio network 
□ (e.g. GSM bearer service) 

m In the GSM network, connections for data transfer can be created by 

F{ dialing a telephone number. The GSM telephones, which are able to 

m transfer data, usually provide a Hayes-compatible interface to a 

^^^15 computer, like a modem. So standard implementations of the PPP 
O protocol (see RFC 1661) can be used to connect a computer to a LAN 

J^^; via the GSM network. 

^ Significant deficiencies adhere to such environments. These 

characteristics of the GSM network and other connection oriented 
20 radio networks necessitate solutions other than PPP ( Point- to-Point 
protocol) : 

• radio networks today offer only slow data transfer rates 
(usually 9600 bit/second) 

• depending on the radio coverage, the speed of the data 
25 transmission may be much slower 

a data connection is lost if there is no more radio coverage 

• when the mobile computer is moving, its radio coverage may 
change rapidly and permanently 
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These characteristics result in the following problems with PPP: 

• once the data connection is lost, all existing TCP/IP 
connections are closed 

• the TCP timeout-mechanisms are not designed for networks with 
such varying transmission speed and turnaround times (see RFC 
813) 

The present invention provides an attractive solution to these 
problems. Due to the Interceptor technology adapted to the special 
characteristics of the wireless network, the above mentioned 
problems are bypassed. 

• Broken data connections on the network layer are reestablished 
without effect on existing TCP/IP connections 

• The TCP protocol is not used on the wireless link, instead the 
communication platform uses a protocol with adjusted 

t imeout -mechani sms 
The solution is transparent to the client and server applications 
in that they still use their old TCP/IP interface. By means of the 
Interceptor component, which catches the TCP/IP traffic (using 
SOCKS) and transfers it using the communication platform, already 
existing client and server applications may benefit from the 
invention without any adaptation effort directed to these 
applications; in other words, existing applications can exploit the 
current teaching transparently. To give some further examples, the 
following protocols can be handled by the Interceptor technology: 
http (see RFC 2068), SMTP (Internet Mail, see RFC 821), NNTP 
(Internet News, see RFC 977) and of course many more. 

3. SOCKS 

In a preferred embodiment the current invention exploits the SOCKS 
protocol (see RFC 1928) to catch all the TCP/IP connections a 
client application opens with a server application. Usually the 
SOCKS protocol is used to establish TCP/IP connections over a 



DE920000038US1 



- 19 - 

firewall. A SOCKS client redirects opening TCP/IP connections to a 
SOCKS server. The first bytes transferred over a new connection 
tell the SOCKS server the IP address and the remote port the client 
application originally used when opening the connection. So the 
5 SOCKS server can open a second TCP/IP connection with this IP 
address and remote port and forward the traffic of each of the 
TCP/IP connections to its counterpart. 

The Interceptor client acts as a SOCKS server; this allows the 
client Interceptor to pretend to represent the corresponding server 
10 application. A SOCKS client must be installed on the mobile 
computer to redirect all outgoing TCP/IP connections (except 
O "localloop"-connections) to the Interceptor client ( "localhost" , IP 

2 address 127.0.0.1). SOCKS clients are available for almost every 

III operating system, 

0115 Interception, Connection Handling and Name Resolution 

The Interceptor client and the Interceptor server communicate using 
O the communication platform. Every time a client application tries 

to open a TCP/IP connection with a server application, the 
'^R connection is redirected to the Interceptor client. The Interceptor 

2^20 client fetches the original destination IP address and the remote 

port using the SOCKS protocol. Then it transfers this information 

to the Interceptor server, which opens a TCP/IP connection with the 

server application using this IP address and remote port. 

If the Interceptor server fails to open the connection with the 
25 server application, the Interceptor client closes the connection 

with the client application. 

All data sent by the client application over a TCP/IP connection is 
forwarded by the Interceptor client via the communication platform 
to the Interceptor server, which sends it to the corresponding 
30 server application. 
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All data sent by the server application over a TCP/IP connection is 
forwarded by the Interceptor server via the communication platform 
to the Interceptor client, which sends it to the corresponding 
client Application. 

5 When the client or the server application closes a TCP/IP 

connection, the Interceptor will close the connection with its 
counterpart . 

The proposed interception mechanism also addresses the problem of 
name resolution. Typically the actual name resolution is provided 
JO by so-called "domain name services" (DNS) . Most available SOCKS 
5 clients handle only TCP/IP traffic. This is a problem, because the 

5S client applications might use domain name resolution (DNS, see RFC 

1101) to obtain an IP address of the host of a server application. 
m DNS uses UDP. 

ril5 For this reason the present invention may implement the Interceptor 
W such that it also acts as a domain name server. Every name 

[p resolution request it receives from a client application is 

C forwarded to an Interceptor server, which again forwards it to a 

real domain name server. For each request the Interceptor server 
20 forwards it uses a different local UDP port, so the answers of the 
real domain name server can be assigned to the requesting clients. 
The Interceptor server sends those answers back to the correct 
Interceptor client, which forwards them to the originator (i.e. the 
client application) . The system-wide domain name server address of 
25 the client system must be configured to be "localhost" (IP address 
127.0.0.1), in order to support DNS over Interceptor. 

Compensation Functionalities of the Interceptor 

As already explained above the preferred embodiment of the current 
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invention intercepts the SOCKS protocol by the client and server 
Interceptors. SOCKS is a protocol that relays TCP sessions at a 
firewall host to allow application users transparent access across 
the firewall. Because the protocol is independent of application 

5 protocols, it can be (and has been) used for many different 

services, such as telnet, ftp, finger, whois, gopher, WWW, etc. The 
server simply relays the data between the client and the 
application server, incurring minimum processing overhead. Since 
SOCKS never has to know anything about the application protocol, it 

10 should also be easy for it to accommodate applications which 
encrypt traffic. 

Instead of communicating with the SOCKS server, in the preferred 
embodiment of the current invention the SOCKS client communicates 
with the Interceptor client running on the mobile device. All data 
15 the Interceptor client receives from the SOCKS client will be sent 
to the Interceptor server using the communication platform. The 
tasks normally done by the SOCKS server are now done by the 
Interceptor client and Interceptor server. 

Fig. 6 depicts a typical GSM network according to the state of the 
20 art wherein mobile devices 601 exploit mobile phones 602 to connect 
to a server application 603, The client network layer 604 uses a 
GSM phone 602 to physically connect to the gateway network layer. 
The GSM phone connects to a base station 605 of the GSM network 
provider and the switching center 606 of the provider connects via 
25 ISDN 607 to the gateway network layer 608 (using the V.llO 
protocol) . 

If the Interceptor technology as described above were to be 
introduced within this exemplary environment, 

• within each of the mobile devices 601 a client Interceptor 
30 would be embodied between the client applications 609 and the 
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communication platforms 604; and 
• a server Interceptor would be embodied between the server 
application 603 and the communication platform gateway 508. 

In such an example environment enhanced with the proposed 
Interceptor technology, the cooperation of the client Interceptors 
and the server Interceptors would achieve significant advantages by 
successfully dealing with the following problem situations: 

1 . Crash Recovery 

Physical connections over GSM networks may be interrupted at any 
time due to a loss of radio coverage. This will happen frequently 
when the mobile device is moving substantially. The Interceptor 
technology would compensate this deficiency: every time a network 
layer has to send some data and there is no physical connection in 
place, it tries to set up a new physical connection with its peer. 
The attempt to set up a connection is repeated until it is 
successful or the logical connection is closed by the session layer 
because the reliability layer has detected a session timeout. 

2 . Shorthold Mode 

The Interceptor technology in place will close idle physical 
connections to reduce costs and to reduce the effort to administer 
unused connections. As soon as the reliability layer passes new 
data, the connection will be set up again. Thus the Interceptor 
approach allows to compensate efficiency deficiencies of the 
underlying protocol, 

3 . Establishing a new Connection 

When a TCP-based client wishes to establish a connection to an 
application server, the SOCKS client first attempts to open a TCP 
connection to the Interceptor client. If the connection request 
succeeds, the SOCKS client sends a version identifier / method 
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selection message. The Interceptor client sends a METHOD selection 
message to the SOCKS client saying "NO AUTHENTICATION REQUIRED" . 
After that the SOCKS client sends a CONNECT request to the 
Interceptor client containing the destination address and 
destination port. The Interceptor client evaluates the request and 
sends a reply message saying "SUCCEEDED" to the SOCKS client. 

Moreover, the Interceptor client sends an Open request packet over 
the Radio Network using the communication platform to the 
Interceptor server. This Open request packet contains the 
destination address, destination port and a client connection 
identifier (client conn id) . The Interceptor server establishes a 
TCP connection to the application server using the given 
destination address and destination port. This TCP connection is 
associated with the given client connection identifier and the 
client identifier (client id) . 

4. Closing a connection 

The application client as well as the application server may close 
a connection. In the first case the Interceptor client sends a 
Close request packet using the communication platform to the 
Interceptor server, which then closes the TCP connection to the 
application server. In the second case the Interceptor server sends 
a Close request packet using the communication platform to the 
Interceptor client, which then closes the TCP connection to the 
application client. 

5. Transferring data 

The data originated by the client application is sent to the 
Interceptor client. The Interceptor client adds the client 
connection identifier to the data before sending it to the 
Intercept server. With the information of the client connection 
identifier the Interceptor server decides over which TCP connection 
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the data have to be sent to the appropriate application server. 

The data originated by the server application is transmitted to the 
Interceptor server over the existing TCP connection. The 
Interceptor server adds the client connection identifier for that 

5 TCP connection to the data. On the other hand the Interceptor 
server knows the client identifier (client id) for the TCP 
connection and can send the data to the Interceptor client. With 
the information of the client connection identifier the Interceptor 
client decides over which TCP connection the data have to be sent 

10 to the appropriate application client. 

6. Insufficient Transmission Capacity 
^fl If the Interceptors determine that the capacity (that is the band 

m width) of the connection is not sufficient to process a 

transmission request within a certain time frame, the client 
jfil5 Interceptor and the server Interceptor may decide to establish 
0^ additional connections between both in parallel. Due to the 

h multitude of parallel connections providing additional transmission 

capabilities the Interceptors are now able to perform the 
i,fl transmission within a significantly shorter time frame. 

'20 7. Multiplexing Multitude of Connections 

Fig. 7 shows how the Interceptor approach can be exploited to 
multiplex a multitude of parallel connections over a single 
connection. Referring to Fig. 7, the client application 7 01 
communicates via a client Interceptor 702, a communication platform 

25 703 on the client system, a communication platform 7 04 on the 
server system, with a server Interceptor 7 05 to the server 
application 706. As can be seen from Fig. 7 the client Interceptor 
and the server Interceptor can be used to multiplex a multitude of 
parallel connections 707 over and a single connection 708. With 

30 this Interceptor functionality exploitation of the underlying 
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protocol can be optimized in terms of efficiency and costs. 
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